Cache Problem

yunusemreyunusemre
edited 10:42AM in FastReport .NET
Hello,

We are using Fast Report V. 2018.4.16.0 in our ASP.NET MVC Web App.

In development process we realise that everytime we render a report, a request goes to ???WebResource.axd??? and ???FastReport.Export.axd??? with auto-generated parameter named ???id??? and gets the HTML response of the report from here. But since .axd files are not requests we can???t to authorize them. So once the report is created and the id parameter .axd file uses is found, report can be accessable from everywhere until IIS resets cache.

This a security issue for us, we don???t want to generate reports without authorizing them.

Is there a workaround or a feature we don???t know about this? If so, could you please help us with this?

Screenshots of the issue are below and attached, looking forward to hear from you.

This is our report and the request it makes to the .axd files : (Image 1)

When I copy the request URL and make the request from Postman, I can get this report without authorization: (Image 2)


https://cdn1.imggmi.com/uploads/2019/7/29/a...888a89-full.jpg

https://cdn1.imggmi.com/uploads/2019/7/29/6...e71702-full.png


Comments

Leave a Comment

Rich Text Editor. To edit a paragraph's style, hit tab to get to the paragraph menu. From there you will be able to pick one style. Nothing defaults to paragraph. An inline formatting menu will show up when you select text. Hit tab to get into that menu. Some elements, such as rich link embeds, images, loading indicators, and error messages may get inserted into the editor. You may navigate to these using the arrow keys inside of the editor and delete them with the delete or backspace key.

Home FastReport .NETComment As ...

© Vanilla Keystone Theme 2024